FEDORA-2021-a3a0273cb2 created by jorton 10 months ago for Fedora 33
stable

This update includes the latest stable release of Apache Subversion, version 1.14.1. This release includes the fix for CVE-2020-17525, a remote unauthenticated denial-of-service in Subversion mod_authz_svn.

The full upstream security advisory for CVE-2020-17525 is available at: https://subversion.apache.org/security/CVE-2020-17525-advisory.txt

User-visible changes:

Client-side improvements and bugfixes:

  • Fix non-deterministic generation of mergeinfo (issue SVN-4862)
  • Fix merge removing a folder with non-inheritable mergeinfo (issue SVN-4859)
  • Do not suggest --help -v for commands which do not support -v
  • Fix invalid SQL quoting in working copy upgrade system
  • Fix problems in human-readable file size formatting
  • Improve an error message from svnmucc
  • Fix 'svn info --xml' gives wrong 'source-right' of conflict (issue SVN-4869)
  • Convert filename for editor from UTF-8 to the locale's encoding

Server-side improvements and bugfixes:

  • Fix authz doesn't combine global and repository rules (issue SVN-4762)
  • Make the hot-backup.py script work with Python 3
  • Fix an uninitialized read in FSFS
  • Make mailer.py work properly with Python 3
  • Fix a potential NULL dereference in the config file parser

How to install

sudo dnf upgrade --advisory=FEDORA-2021-a3a0273cb2

This update has been submitted for testing by jorton.

10 months ago

This update's test gating status has been changed to 'ignored'.

10 months ago

This update's test gating status has been changed to 'waiting'.

10 months ago

This update's test gating status has been changed to 'ignored'.

10 months ago

This update has been pushed to testing.

10 months ago
User Icon bojan commented & provided feedback 10 months ago
karma

Works.

jorton edited this update.

10 months ago

jorton edited this update.

10 months ago
User Icon filiperosset commented & provided feedback 10 months ago
karma

no regressions noted

This update can be pushed to stable now if the maintainer wishes

10 months ago
User Icon cserpentis commented & provided feedback 10 months ago
karma

works for me

This update has been submitted for stable by bodhi.

10 months ago

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
10 months ago
in testing
10 months ago
in stable
10 months ago
modified
10 months ago
BZ#1768698 hot-backup.py is no longer working
0
0
BZ#1927265 subversion-1.14.1 is available
0
0
BZ#1927472 CVE-2020-17525 subversion: Remote unauthenticated denial-of-service in mod_authz_svn [fedora-all]
0
0

Automated Test Results